mailcow/src/mailcow-dockerized/data/conf/rspamd/meta_exporter/pushover.php - kubeia - Gitiles

 <?php
 // File size is limited by Nginx site to 10M
 // To speed things up, we do not include prerequisites
 header('Content-Type: text/plain');
 require_once "vars.inc.php";
 // Do not show errors, we log to using error_log
 ini_set('error_reporting', 0);
 // Init database
 //$dsn = $database_type . ':host=' . $database_host . ';dbname=' . $database_name;
 $dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
 $opt = [
     PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
     PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
     PDO::ATTR_EMULATE_PREPARES   => false,
 ];
 try {
   $pdo = new PDO($dsn, $database_user, $database_pass, $opt);
 }
 catch (PDOException $e) {
   error_log("NOTIFY: " . $e . PHP_EOL);
   http_response_code(501);
   exit;
 }
 // Init Redis
 $redis = new Redis();
 $redis->connect('redis-mailcow', 6379);

 // Functions
 function parse_email($email) {
   if(!filter_var($email, FILTER_VALIDATE_EMAIL)) return false;
   $a = strrpos($email, '@');
   return array('local' => substr($email, 0, $a), 'domain' => substr(substr($email, $a), 1));
 }
 if (!function_exists('getallheaders'))  {
   function getallheaders() {
     if (!is_array($_SERVER)) {
       return array();
     }
     $headers = array();
     foreach ($_SERVER as $name => $value) {
       if (substr($name, 0, 5) == 'HTTP_') {
         $headers[str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($name, 5)))))] = $value;
       }
     }
     return $headers;
   }
 }

 $headers = getallheaders();
 $json_body = json_decode(file_get_contents('php://input'));

 $qid      = $headers['X-Rspamd-Qid'];
 $rcpts    = $headers['X-Rspamd-Rcpt'];
 $sender   = $headers['X-Rspamd-From'];
 $ip       = $headers['X-Rspamd-Ip'];
 $subject  = $headers['X-Rspamd-Subject'];
 $messageid= $json_body->message_id;
 $priority = 0;

 $symbols_array = json_decode($headers['X-Rspamd-Symbols'], true);
 if (is_array($symbols_array)) {
   foreach ($symbols_array as $symbol) {
     if ($symbol['name'] == 'HAS_X_PRIO_ONE') {
       $priority = 1;
       break;
     }
   }
 }

 $sender_address = $json_body->header_from[0];
 $sender_name = '-';
 if (preg_match('/(?<name>.*?)<(?<address>.*?)>/i', $sender_address, $matches)) {
 	$sender_address = $matches['address'];
   $sender_name =  trim($matches['name'], '"\' ');
 }

 $to_address = $json_body->header_to[0];
 $to_name = '-';
 if (preg_match('/(?<name>.*?)<(?<address>.*?)>/i', $to_address, $matches)) {
 	$to_address = $matches['address'];
   $to_name =  trim($matches['name'], '"\' ');
 }

 $rcpt_final_mailboxes = array();

 // Loop through all rcpts
 foreach (json_decode($rcpts, true) as $rcpt) {
   // Remove tag
   $rcpt = preg_replace('/^(.*?)\+.*(@.*)$/', '$1$2', $rcpt);

   // Break rcpt into local part and domain part
   $parsed_rcpt = parse_email($rcpt);

   // Skip if not a mailcow handled domain
   try {
     if (!$redis->hGet('DOMAIN_MAP', $parsed_rcpt['domain'])) {
       continue;
     }
   }
   catch (RedisException $e) {
     error_log("NOTIFY: " . $e . PHP_EOL);
     http_response_code(504);
     exit;
   }

   // Always assume rcpt is not a final mailbox but an alias for a mailbox or further aliases
   //
   //             rcpt
   //              |
   // mailbox <-- goto ---> alias1, alias2, mailbox2
   //                          |       |
   //                      mailbox3    |
   //                                  |
   //                               alias3 ---> mailbox4
   //
   try {
     $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'");
     $stmt->execute(array(
       ':rcpt' => $rcpt
     ));
     $gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
     if (empty($gotos)) {
       $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'");
       $stmt->execute(array(
         ':rcpt' => '@' . $parsed_rcpt['domain']
       ));
       $gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
     }
     if (empty($gotos)) {
       $stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :rcpt AND `active` = '1'");
       $stmt->execute(array(':rcpt' => $parsed_rcpt['domain']));
       $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain'];
       if ($goto_branch) {
         $gotos = $parsed_rcpt['local'] . '@' . $goto_branch;
       }
     }
     $gotos_array = explode(',', $gotos);

     $loop_c = 0;

     while (count($gotos_array) != 0 && $loop_c <= 20) {

       // Loop through all found gotos
       foreach ($gotos_array as $index => &$goto) {
         error_log("RCPT RESOVLER: http pipe: query " . $goto . " as username from mailbox" . PHP_EOL);
         $stmt = $pdo->prepare("SELECT `username` FROM `mailbox` WHERE `username` = :goto AND (`active`= '1' OR `active`= '2');");
         $stmt->execute(array(':goto' => $goto));
         $username = $stmt->fetch(PDO::FETCH_ASSOC)['username'];
         if (!empty($username)) {
           error_log("RCPT RESOVLER: http pipe: mailbox found: " . $username . PHP_EOL);
           // Current goto is a mailbox, save to rcpt_final_mailboxes if not a duplicate
           if (!in_array($username, $rcpt_final_mailboxes)) {
             $rcpt_final_mailboxes[] = $username;
           }
         }
         else {
           $parsed_goto = parse_email($goto);
           if (!$redis->hGet('DOMAIN_MAP', $parsed_goto['domain'])) {
             error_log("RCPT RESOVLER:" . $goto . " is not a mailcow handled mailbox or alias address" . PHP_EOL);
           }
           else {
             $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :goto AND `active` = '1'");
             $stmt->execute(array(':goto' => $goto));
             $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
             if ($goto_branch) {
               error_log("RCPT RESOVLER: http pipe: goto address " . $goto . " is an alias branch for " . $goto_branch . PHP_EOL);
               $goto_branch_array = explode(',', $goto_branch);
             } else {
               $stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :domain AND `active` AND '1'");
               $stmt->execute(array(':domain' => $parsed_goto['domain']));
               $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain'];
               if ($goto_branch) {
                 error_log("RCPT RESOVLER: http pipe: goto domain " . $parsed_goto['domain'] . " is a domain alias branch for " . $goto_branch . PHP_EOL);
                 $goto_branch_array = array($parsed_goto['local'] . '@' . $goto_branch);
               }
             }
           }
         }
         // goto item was processed, unset
         unset($gotos_array[$index]);
       }

       // Merge goto branch array derived from previous loop (if any), filter duplicates and unset goto branch array
       if (!empty($goto_branch_array)) {
         $gotos_array = array_unique(array_merge($gotos_array, $goto_branch_array));
         unset($goto_branch_array);
       }

       // Reindex array
       $gotos_array = array_values($gotos_array);

       // Force exit if loop cannot be solved
       // Postfix does not allow for alias loops, so this should never happen.
       $loop_c++;
       error_log("RCPT RESOVLER: http pipe: goto array count on loop #". $loop_c . " is " . count($gotos_array) . PHP_EOL);
     }
   }
   catch (PDOException $e) {
     error_log("RCPT RESOVLER: " . $e->getMessage() . PHP_EOL);
     http_response_code(502);
     exit;
   }
 }


 foreach ($rcpt_final_mailboxes as $rcpt_final) {
   error_log("NOTIFY: pushover pipe: processing pushover message for rcpt " . $rcpt_final . PHP_EOL);
   $stmt = $pdo->prepare("SELECT * FROM `pushover`
     WHERE `username` = :username AND `active` = '1'");
   $stmt->execute(array(
     ':username' => $rcpt_final
   ));
   $api_data = $stmt->fetch(PDO::FETCH_ASSOC);
   if (isset($api_data['key']) && isset($api_data['token'])) {
     $title = (!empty($api_data['title'])) ? $api_data['title'] : 'Mail';
     $text = (!empty($api_data['text'])) ? $api_data['text'] : 'You\'ve got mail 📧';
     $attributes = json_decode($api_data['attributes'], true);
     $senders = explode(',', $api_data['senders']);
     $senders = array_filter($senders);
     $senders_regex = $api_data['senders_regex'];
     $sender_validated = false;
     if (empty($senders) && empty($senders_regex)) {
       $sender_validated = true;
     }
     else {
       if (!empty($senders)) {
         if (in_array($sender, $senders)) {
           $sender_validated = true;
         }
       }
       if (!empty($senders_regex) && $sender_validated !== true) {
         if (preg_match($senders_regex, $sender)) {
           $sender_validated = true;
         }
       }
     }
     if ($sender_validated === false) {
       error_log("NOTIFY: pushover pipe: skipping unwanted sender " . $sender);
       continue;
     }
     if ($attributes['only_x_prio'] == "1" && $priority == 0) {
       error_log("NOTIFY: pushover pipe: mail has no X-Priority: 1 header, skipping");
       continue;
     }
     $post_fields = array(
       "token" => $api_data['token'],
       "user" => $api_data['key'],
       "title" => sprintf("%s", str_replace(
         array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}', '{MSG_ID}'),
         array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address, $messageid), $title)
       ),
       "priority" => $priority,
       "message" => sprintf("%s", str_replace(
         array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}', '{MSG_ID}', '\n'),
         array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address, $messageid, PHP_EOL), $text)
       ),
       "sound" => $attributes['sound'] ?? "pushover"
     );
     if ($attributes['evaluate_x_prio'] == "1" && $priority == 1) {
       $post_fields['expire'] = 600;
       $post_fields['retry'] = 120;
       $post_fields['priority'] = 2;
     }
     curl_setopt_array($ch = curl_init(), array(
       CURLOPT_URL => "https://api.pushover.net/1/messages.json",
       CURLOPT_POSTFIELDS => $post_fields,
       CURLOPT_SAFE_UPLOAD => true,
       CURLOPT_RETURNTRANSFER => true,
     ));
     $result = curl_exec($ch);
     $httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
     curl_close($ch);
     error_log("NOTIFY: result: " . $httpcode . PHP_EOL);
   }
 }
	<?php
	// File size is limited by Nginx site to 10M
	// To speed things up, we do not include prerequisites
	header('Content-Type: text/plain');
	require_once "vars.inc.php";
	// Do not show errors, we log to using error_log
	ini_set('error_reporting', 0);
	// Init database
	//$dsn = $database_type . ':host=' . $database_host . ';dbname=' . $database_name;
	$dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
	$opt = [
	PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
	PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
	PDO::ATTR_EMULATE_PREPARES => false,
	];
	try {
	$pdo = new PDO($dsn, $database_user, $database_pass, $opt);
	}
	catch (PDOException $e) {
	error_log("NOTIFY: " . $e . PHP_EOL);
	http_response_code(501);
	exit;
	}
	// Init Redis
	$redis = new Redis();
	$redis->connect('redis-mailcow', 6379);

	// Functions
	function parse_email($email) {
	if(!filter_var($email, FILTER_VALIDATE_EMAIL)) return false;
	$a = strrpos($email, '@');
	return array('local' => substr($email, 0, $a), 'domain' => substr(substr($email, $a), 1));
	}
	if (!function_exists('getallheaders')) {
	function getallheaders() {
	if (!is_array($_SERVER)) {
	return array();
	}
	$headers = array();
	foreach ($_SERVER as $name => $value) {
	if (substr($name, 0, 5) == 'HTTP_') {
	$headers[str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($name, 5)))))] = $value;
	}
	}
	return $headers;
	}
	}

	$headers = getallheaders();
	$json_body = json_decode(file_get_contents('php://input'));

	$qid = $headers['X-Rspamd-Qid'];
	$rcpts = $headers['X-Rspamd-Rcpt'];
	$sender = $headers['X-Rspamd-From'];
	$ip = $headers['X-Rspamd-Ip'];
	$subject = $headers['X-Rspamd-Subject'];
	$messageid= $json_body->message_id;
	$priority = 0;

	$symbols_array = json_decode($headers['X-Rspamd-Symbols'], true);
	if (is_array($symbols_array)) {
	foreach ($symbols_array as $symbol) {
	if ($symbol['name'] == 'HAS_X_PRIO_ONE') {
	$priority = 1;
	break;
	}
	}
	}

	$sender_address = $json_body->header_from[0];
	$sender_name = '-';
	if (preg_match('/(?<name>.?)<(?<address>.?)>/i', $sender_address, $matches)) {
	$sender_address = $matches['address'];
	$sender_name = trim($matches['name'], '"\' ');
	}

	$to_address = $json_body->header_to[0];
	$to_name = '-';
	if (preg_match('/(?<name>.?)<(?<address>.?)>/i', $to_address, $matches)) {
	$to_address = $matches['address'];
	$to_name = trim($matches['name'], '"\' ');
	}

	$rcpt_final_mailboxes = array();

	// Loop through all rcpts
	foreach (json_decode($rcpts, true) as $rcpt) {
	// Remove tag
	$rcpt = preg_replace('/^(.?)\+.(@.*)$/', '$1$2', $rcpt);

	// Break rcpt into local part and domain part
	$parsed_rcpt = parse_email($rcpt);

	// Skip if not a mailcow handled domain
	try {
	if (!$redis->hGet('DOMAIN_MAP', $parsed_rcpt['domain'])) {
	continue;
	}
	}
	catch (RedisException $e) {
	error_log("NOTIFY: " . $e . PHP_EOL);
	http_response_code(504);
	exit;
	}

	// Always assume rcpt is not a final mailbox but an alias for a mailbox or further aliases
	//
	// rcpt
	// \|
	// mailbox <-- goto ---> alias1, alias2, mailbox2
	// \| \|
	// mailbox3 \|
	// \|
	// alias3 ---> mailbox4
	//
	try {
	$stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'");
	$stmt->execute(array(
	':rcpt' => $rcpt
	));
	$gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
	if (empty($gotos)) {
	$stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'");
	$stmt->execute(array(
	':rcpt' => '@' . $parsed_rcpt['domain']
	));
	$gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
	}
	if (empty($gotos)) {
	$stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :rcpt AND `active` = '1'");
	$stmt->execute(array(':rcpt' => $parsed_rcpt['domain']));
	$goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain'];
	if ($goto_branch) {
	$gotos = $parsed_rcpt['local'] . '@' . $goto_branch;
	}
	}
	$gotos_array = explode(',', $gotos);

	$loop_c = 0;

	while (count($gotos_array) != 0 && $loop_c <= 20) {

	// Loop through all found gotos
	foreach ($gotos_array as $index => &$goto) {
	error_log("RCPT RESOVLER: http pipe: query " . $goto . " as username from mailbox" . PHP_EOL);
	$stmt = $pdo->prepare("SELECT `username` FROM `mailbox` WHERE `username` = :goto AND (`active`= '1' OR `active`= '2');");
	$stmt->execute(array(':goto' => $goto));
	$username = $stmt->fetch(PDO::FETCH_ASSOC)['username'];
	if (!empty($username)) {
	error_log("RCPT RESOVLER: http pipe: mailbox found: " . $username . PHP_EOL);
	// Current goto is a mailbox, save to rcpt_final_mailboxes if not a duplicate
	if (!in_array($username, $rcpt_final_mailboxes)) {
	$rcpt_final_mailboxes[] = $username;
	}
	}
	else {
	$parsed_goto = parse_email($goto);
	if (!$redis->hGet('DOMAIN_MAP', $parsed_goto['domain'])) {
	error_log("RCPT RESOVLER:" . $goto . " is not a mailcow handled mailbox or alias address" . PHP_EOL);
	}
	else {
	$stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :goto AND `active` = '1'");
	$stmt->execute(array(':goto' => $goto));
	$goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
	if ($goto_branch) {
	error_log("RCPT RESOVLER: http pipe: goto address " . $goto . " is an alias branch for " . $goto_branch . PHP_EOL);
	$goto_branch_array = explode(',', $goto_branch);
	} else {
	$stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :domain AND `active` AND '1'");
	$stmt->execute(array(':domain' => $parsed_goto['domain']));
	$goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain'];
	if ($goto_branch) {
	error_log("RCPT RESOVLER: http pipe: goto domain " . $parsed_goto['domain'] . " is a domain alias branch for " . $goto_branch . PHP_EOL);
	$goto_branch_array = array($parsed_goto['local'] . '@' . $goto_branch);
	}
	}
	}
	}
	// goto item was processed, unset
	unset($gotos_array[$index]);
	}

	// Merge goto branch array derived from previous loop (if any), filter duplicates and unset goto branch array
	if (!empty($goto_branch_array)) {
	$gotos_array = array_unique(array_merge($gotos_array, $goto_branch_array));
	unset($goto_branch_array);
	}

	// Reindex array
	$gotos_array = array_values($gotos_array);

	// Force exit if loop cannot be solved
	// Postfix does not allow for alias loops, so this should never happen.
	$loop_c++;
	error_log("RCPT RESOVLER: http pipe: goto array count on loop #". $loop_c . " is " . count($gotos_array) . PHP_EOL);
	}
	}
	catch (PDOException $e) {
	error_log("RCPT RESOVLER: " . $e->getMessage() . PHP_EOL);
	http_response_code(502);
	exit;
	}
	}


	foreach ($rcpt_final_mailboxes as $rcpt_final) {
	error_log("NOTIFY: pushover pipe: processing pushover message for rcpt " . $rcpt_final . PHP_EOL);
	$stmt = $pdo->prepare("SELECT * FROM `pushover`
	WHERE `username` = :username AND `active` = '1'");
	$stmt->execute(array(
	':username' => $rcpt_final
	));
	$api_data = $stmt->fetch(PDO::FETCH_ASSOC);
	if (isset($api_data['key']) && isset($api_data['token'])) {
	$title = (!empty($api_data['title'])) ? $api_data['title'] : 'Mail';
	$text = (!empty($api_data['text'])) ? $api_data['text'] : 'You\'ve got mail 📧';
	$attributes = json_decode($api_data['attributes'], true);
	$senders = explode(',', $api_data['senders']);
	$senders = array_filter($senders);
	$senders_regex = $api_data['senders_regex'];
	$sender_validated = false;
	if (empty($senders) && empty($senders_regex)) {
	$sender_validated = true;
	}
	else {
	if (!empty($senders)) {
	if (in_array($sender, $senders)) {
	$sender_validated = true;
	}
	}
	if (!empty($senders_regex) && $sender_validated !== true) {
	if (preg_match($senders_regex, $sender)) {
	$sender_validated = true;
	}
	}
	}
	if ($sender_validated === false) {
	error_log("NOTIFY: pushover pipe: skipping unwanted sender " . $sender);
	continue;
	}
	if ($attributes['only_x_prio'] == "1" && $priority == 0) {
	error_log("NOTIFY: pushover pipe: mail has no X-Priority: 1 header, skipping");
	continue;
	}
	$post_fields = array(
	"token" => $api_data['token'],
	"user" => $api_data['key'],
	"title" => sprintf("%s", str_replace(
	array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}', '{MSG_ID}'),
	array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address, $messageid), $title)
	),
	"priority" => $priority,
	"message" => sprintf("%s", str_replace(
	array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}', '{MSG_ID}', '\n'),
	array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address, $messageid, PHP_EOL), $text)
	),
	"sound" => $attributes['sound'] ?? "pushover"
	);
	if ($attributes['evaluate_x_prio'] == "1" && $priority == 1) {
	$post_fields['expire'] = 600;
	$post_fields['retry'] = 120;
	$post_fields['priority'] = 2;
	}
	curl_setopt_array($ch = curl_init(), array(
	CURLOPT_URL => "https://api.pushover.net/1/messages.json",
	CURLOPT_POSTFIELDS => $post_fields,
	CURLOPT_SAFE_UPLOAD => true,
	CURLOPT_RETURNTRANSFER => true,
	));
	$result = curl_exec($ch);
	$httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
	curl_close($ch);
	error_log("NOTIFY: result: " . $httpcode . PHP_EOL);
	}
	}